W3C home > Mailing lists > Public > public-html-bugzilla@w3.org > November 2010

[Bug 11235] Support a rel attribute that restricts cookie transmission

From: <bugzilla@jessica.w3.org>
Date: Wed, 10 Nov 2010 14:38:58 +0000
To: public-html-bugzilla@w3.org
Message-Id: <E1PGBpC-0005DP-54@jessica.w3.org>
http://www.w3.org/Bugs/Public/show_bug.cgi?id=11235

--- Comment #9 from Kyle Simpson <w3c@getify.myspamkiller.com> 2010-11-10 14:38:57 UTC ---
I think the mitigation of XHR is that normal XHR only works same-domain, and
even CORS requires the server to handle the pre-flight authorization before a
real cross-domain request can come in, whereas <script>, <link>, <img> etc can
all freely make cross-domain requests.

Nevertheless, I'll check out that list. Do I need to join that WG before I can
post?

-- 
Configure bugmail: http://www.w3.org/Bugs/Public/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
Received on Wednesday, 10 November 2010 14:38:59 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 10 November 2010 14:39:00 GMT